CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12459 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12459
04 Aug 2017 — The bfd_mach_o_read_symtab_strtab function in bfd/mach-o.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted mach-o file. La función bfd_mach_o_read_symtab_strtab en bfd/mach-o.c en la librería Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos ... • https://sourceware.org/bugzilla/show_bug.cgi?id=21840 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12455 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12455
04 Aug 2017 — The evax_bfd_print_emh function in vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted vms alpha file. La función evax_bfd_print_emh en vms-alpha.c en la librería Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una lectura de memoria dinámica fuera de límites... • https://sourceware.org/bugzilla/show_bug.cgi?id=21840 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12456 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12456
04 Aug 2017 — The read_symbol_stabs_debugging_info function in rddbg.c in GNU Binutils 2.29 and earlier allows remote attackers to cause an out of bounds heap read via a crafted binary file. La función read_symbol_stabs_debugging_info en rddbg.c en GNU Binutils 2.29 y anteriores permite que atacantes remotos provoquen una lectura de memoria dinámica fuera de límites mediante un archivo binario manipulado. USN-4336-1 fixed several vulnerabilities in GNU binutils. This update provides the corresponding update for Ubuntu 16... • https://security.gentoo.org/glsa/201801-01 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12450 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12450
04 Aug 2017 — The alpha_vms_object_p function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap write and possibly achieve code execution via a crafted vms alpha file. La función alpha_vms_object_p en bfd/vms-alpha.c de la librería Binary File Descriptor (BFD), también llamada libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una escri... • https://sourceware.org/bugzilla/show_bug.cgi?id=21813 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12454 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12454
04 Aug 2017 — The _bfd_vms_slurp_egsd function in bfd/vms-alpha.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an arbitrary memory read via a crafted vms alpha file. La función _bfd_vms_slurp_egsd en bfd/vms-alpha.c en la librería Binary File Descriptor (BFD), también conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una lectura de memoria arbitraria median... • https://sourceware.org/bugzilla/show_bug.cgi?id=21813 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12452 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-12452
04 Aug 2017 — The bfd_mach_o_i386_canonicalize_one_reloc function in bfd/mach-o-i386.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause an out of bounds heap read via a crafted mach-o file. La función bfd_mach_o_i386_canonicalize_one_reloc en bfd/mach-o-i386.c en la librería Binary File Descriptor (BFD), conocida como libbfd, tal y como se distribuye en GNU Binutils 2.29 y anteriores, permite que atacantes remotos provoquen una lec... • https://sourceware.org/bugzilla/show_bug.cgi?id=21813 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9955
https://notcve.org/view.php?id=CVE-2017-9955
26 Jun 2017 — The get_build_id function in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file in which a certain size field is larger than a corresponding data field, as demonstrated by mishandling within the objdump program. La función get_build_id en el archivo opncls.c en la librería Binary File Descriptor (BFD) (también conocida como libbfd) d... • http://www.securityfocus.com/bid/99573 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9954 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9954
26 Jun 2017 — The getvalue function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted tekhex file, as demonstrated by mishandling within the nm program. La función getvalue en el archivo teckhex.c en la librería Binary File Descriptor (BFD), distribuida en GNU Binutils 2.28, permite a un atacante remoto causar una denegación de servicio (buffer ov... • http://www.securityfocus.com/bid/99307 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2017-9753 – Ubuntu Security Notice USN-4336-2
https://notcve.org/view.php?id=CVE-2017-9753
19 Jun 2017 — The versados_mkobject function in bfd/versados.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, does not initialize a certain data structure, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función versados_mkobject en el archivo bfd/versados.c en la biblioteca Bina... • http://www.securityfocus.com/bid/99116 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 2CVE-2017-9756 – GNU binutils - 'aarch64_ext_ldst_reglist' Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-9756
19 Jun 2017 — The aarch64_ext_ldst_reglist function in opcodes/aarch64-dis.c in GNU Binutils 2.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by mishandling of this file during "objdump -D" execution. La función aarch64_ext_ldst_reglist en el archivo opcodes/aarch64-dis.c en GNU Binutils versión 2.28, permite a los atacantes remotos causar una denegación de servicio (desbordamiento de búfe... • https://packetstorm.news/files/id/143045 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •